On 20/01/14 19:01, Ron Wilson wrote:
> On Mon, Jan 20, 2014 at 5:37 AM, Simon D Morris
> <simon.d.morris_at_gb.abb.com <mailto:simon.d.morris_at_gb.abb.com>> wrote:
>
> Perhaps someone with more knowledge of SSL could give some advice:
>
> What constitutes "good practice" at present for key lengths,
> algorithms and the like for server and client keys and
> certificates, in the context of an Apache HTTPS solution and TSVN?
>
>
> I suggest you consult the OpenSSL forums and, maybe, ask on
> slashdot.org <http://slashdot.org>
>
> In general, I'd say a key length of at least 4096 bits. Beyond that,
> many commonly used algorithms have recently been declared no longer
> secure, so it seems that anyone trying to setup servers using
> encryption should be doing a lot of research. Sorry to have to say that.
>
Not the answer I'd hoped for, but I'm not surprised!
I might as well stick with 4096bit keys for the moment then, and keep
looking around.
Thanks.
------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=3071843
To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_tortoisesvn.tigris.org].
Received on 2014-01-21 09:55:33 CET